Which solution will meet these requirements?
Create an AWS Config rule to discover sensitive personal information in the S3 files and mark them as noncompliant.
Create an S3 event-driven artificial intelligence/machine learning (AI/ML) pipeline to classify sensitive personal information by using Amazon Rekognition.
Enable Amazon GuardDuty. Configure S3 protection to monitor all data inside Amazon S3.
Enable Amazon Macie. Create a discovery job that uses the managed data identifier.
Explanations:
AWS Config is used for resource compliance and configuration management, not for discovering sensitive information in S3 files. It doesn’t provide the functionality for scanning or classifying data.
Amazon Rekognition is designed for image and video analysis, not for identifying sensitive personal information (PII) in S3 files. It is not suitable for text or document classification.
Amazon GuardDuty is a threat detection service that monitors for malicious activity. It does not specifically focus on classifying or discovering sensitive personal information within S3 files.
Amazon Macie is designed specifically for discovering and classifying sensitive data, including PII, in S3 buckets. It uses machine learning to detect and manage sensitive data, making it the correct solution for this requirement.